Hi, I would like to know something more about using agentless NAC. We want to use Clean Access Server, but mainly to avoid MAC Spoofing. We think that CAS host scanning engine can help us through.
Is it possible to configure CAS to scan ports, so if it founds "something" (a certain port open, a banner, a combination of both,...), it can allow access without the need of authentication? On this way, an attacker that could steal a MAC address (maybe from an IP phone, or a printer) , will have no access due to this "combination" of parameters that host scanning engine must find on the endpoint,
Best,
JM2008